From owner-freebsd-security  Fri Jun 28  3:44:42 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5565F37B401
	for <freebsd-security@FreeBSD.ORG>; Fri, 28 Jun 2002 03:44:37 -0700 (PDT)
Received: from norton.palomine.net (dsl254-102-179.nyc1.dsl.speakeasy.net [216.254.102.179])
	by mx1.FreeBSD.org (Postfix) with SMTP id 45F5C43E0A
	for <freebsd-security@FreeBSD.ORG>; Fri, 28 Jun 2002 03:44:36 -0700 (PDT)
	(envelope-from cjohnson@palomine.net)
Received: (qmail 80770 invoked by uid 1000); 28 Jun 2002 10:44:35 -0000
Date: Fri, 28 Jun 2002 06:44:35 -0400
From: Chris Johnson <cjohnson@palomine.net>
To: FreeBSD Security Mailling List <freebsd-security@FreeBSD.ORG>
Subject: Re: Installing openssh-portable 3.4
Message-ID: <20020628104435.GA80604@palomine.net>
References: <20020627225747.GA70498@palomine.net> <Pine.GSO.4.44.0206281137060.28677-100000@mail.ilrt.bris.ac.uk>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="h31gzZEtNLTqOjlF"
Content-Disposition: inline
In-Reply-To: <Pine.GSO.4.44.0206281137060.28677-100000@mail.ilrt.bris.ac.uk>
User-Agent: Mutt/1.4i
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


--h31gzZEtNLTqOjlF
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Jun 28, 2002 at 11:37:22AM +0100, Jan Grant wrote:
> On Thu, 27 Jun 2002, Chris Johnson wrote:
>=20
> > On Thu, Jun 27, 2002 at 05:50:52PM -0500, Emacs wrote:
> > > I did this as well, but my ssh is hanging at login on 2 of my 4 boxes.
> > > Any ideas?
> >
> > # cp /etc/resolv.conf /usr/local/empty/etc/resolv.conf
> > # chmod 755 /usr/local/empty
> >
> > (If yours is set up with /var/empty instead of /usr/local/empty, make t=
he
> > appropriate change above.)
> >
> > I don't know the implications of having /usr/local/empty with mode 755 =
instead
> > of 700. Previous versions of the port created it with 755, while the cu=
rrent
> > version creates it with 700. It does solve the problem for me.
> >
> > I also don't know why this step is necessary sometimes and sometimes no=
t. It
> > happened on three of the ten or so boxes I installed openssh-portable-3=
.4p1 on,
> > and I don't see the rhyme or reason.
>=20
> ReverseMappingCheck no
>=20
> ?

The configuration files are identical on all the boxes, with
VerifyReverseMapping commented out.

Chris

--h31gzZEtNLTqOjlF
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (FreeBSD)

iD8DBQE9HD4SPC78Lz4X/PARArI4AJ9YTG5CmRXqwedVbnMUezzL8QMnsgCgpxyB
uM6o1q/XE9Aw8vmnoeymGoQ=
=xxlQ
-----END PGP SIGNATURE-----

--h31gzZEtNLTqOjlF--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message